The following people are credited for the discovery of vulnerabilities listed in the Critical Patch Update:
Brian Carr; Sacha Faust of S.P.I. Dynamics, Inc.; Esteban Martínez Fayó of Application Security, Inc.; Alexander Kornbrust of Red Database Securi